This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Unable to execute scan in Linux, "Useful life of Scan has been exceeded"

Downloaded and installed SAV for linux today. 

SAVScan virus detection utility
Version 5.27.0 [Linux/AMD64]
Virus data version 5.30, August 2016

Immediately upon installation I received this message:

"On-access scanning not available. It was not possible to obtain or build suitable kernel support."

Subsequently I tried running a scan, here's the output:

guy@guy-Latitude-E4310 ~ $ savscan -f
SAVScan virus detection utility
Version 5.27.0 [Linux/AMD64]
Virus data version 5.30, August 2016
Includes detection for 11781705 viruses, Trojans and worms
Copyright (c) 1989-2016 Sophos Limited. All rights reserved.

System time 10:30:39 PM, System date 06 February 2017
Command line qualifiers are: -f

Useful life of Scan has been exceeded

 

Is there a solution?



This thread was automatically locked due to age.
Parents
  • Hello GuyDamico,

    downloaded ... SAV for linux today
    from where? Virus data version 5.30, August 2016 suggests the package is half a year old. This would also explain the It was not possible to obtain or build suitable kernel support as the included Talpa version is very likely too old for your Linux (BTW, it's always a good idea to specify the system's details - uname).

    The obvious solution is to download the current version here.

    Christian

Reply
  • Hello GuyDamico,

    downloaded ... SAV for linux today
    from where? Virus data version 5.30, August 2016 suggests the package is half a year old. This would also explain the It was not possible to obtain or build suitable kernel support as the included Talpa version is very likely too old for your Linux (BTW, it's always a good idea to specify the system's details - uname).

    The obvious solution is to download the current version here.

    Christian

Children
  • If i use your Link, I get exact the same Version as the thread starter. Is it possible, that there is no newer Version of the free Version?

  • Hello Phil Well,

    indeed the package contains (the latest) version 9.12.3 but with the data from the time it came out - August 2016. Thus there is no new version but newer data. It should update itself with the latest data after installation and sweep should no longer complain afterwards. Or do you have an issue with compiling Talpa?

    Christian

  • Well... I feel a bit sheepisch of that. I just forgot to compile Talpa.

    That might be the same problem in #1.

    Thanks for the Hint!

  • My system info: Linux HPDesktop 3.19.0-32-generic #37~14.04.1-Ubuntu SMP Thu Oct 22 09:41:40 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux

    I used your link today and I still am unable to run a scan:

    "guy@HPDesktop ~/sophos-av $ savscan -f
    SAVScan virus detection utility
    Version 5.27.0 [Linux/AMD64]
    Virus data version 5.30, August 2016
    Includes detection for 11781705 viruses, Trojans and worms
    Copyright (c) 1989-2016 Sophos Limited. All rights reserved.

    System time 02:46:23 PM, System date 21 February 2017
    Command line qualifiers are: -f

    Useful life of Scan has been exceeded

    I saw your comment to another post about compiling TALPA.  I have no idea what TALPA is.  I tried a google search on the word without any success.

  • Did a revised google search "compile TALPA" and found an article on the Sophos forum.  I don't know if it is still applicable to my situation as there isn't any message about kernal support but I went ahead and executed the command. Here's the out:

    guy@HPDesktop ~/sophos-av $ sudo /opt/sophos-av/engine/talpa_select select
    [sudo] password for guy:
    [Talpa-select]
    Copyright (c) 1989-2016 Sophos Limited. All rights reserved.
    Tue Feb 21 20:00:29 2017 GMT
    Linux distribution: [linuxmint]
    Product: [Linux Mint 17.3 Rosa]
    Kernel: [3.19.0-32-generic]
    Multiprocessor support enabled.
    Searching for source pack...
    Searching for suitable binary pack...
    No suitable binary pack available.
    Preparing for build...
    Extracting sources...
    Configuring build of version 1.21.5...
    Error: Failed to prepare the source code for build. Please review the Sophos Support forums for assistance on resolving this.

  • Hello GuyDamico,

    savscan performs an on-demand scan and thus file access interception (either Talpa or Fanotify) doesn't come into play. Talpa is required for On-Access ("real-time") scanning, i.e. files to be opened by an application are scanned before access is permitted.

    The Useful life of Scan has been exceeded indicates that SAV hasn't updated after installation. This should be the case only if either the machine has no Internet connection or updating hasn't been (correctly) configured. What happens if you run  /opt/sophos-av/bin/savupdate?

    Christian

  • Hello GuyDamico,

    while there are no precompiled Talpa binary packs for Mint it should compile. Please check the /opt/sophos-av/log/talpaselect.log as mentioned in the Locally Compiling ... article.

    Christian

  • Executing the update command cured the problem.  Thanks very much.

  • Checked the log as suggested, found this first error:"checking for C compiler default output file name... configure: error: C compiler cannot create executables"

    Checked config files as noted talpaselect.log "See `config.log' for more details."

    Found the following problem:

    Thread model: posix
    gcc version 4.8.4 (Ubuntu 4.8.4-2ubuntu1~14.04.3)
    configure:2193: $? = 0
    configure:2195: gcc -V </dev/null >&5
    gcc: error: unrecognized command line option '-V'
    gcc: fatal error: no input files
    compilation terminated.

  • Hello GuyDamico,

    could you please post both complete logs (BTW: the unrecognized -V is normal)?

    Christian